About
Accomplished IT Professional as a SOC Analyst (L1/L2) with 5 years of experience in Security Operations, Incident Response, and Threat Hunting across enterprise and global client environments. Hands-on expertise in Splunk ES, Azure Sentinel, Defender XDR, CrowdStrike, and SIEM rule tuning. Proven ability to investigate phishing, malware, brute-force, ransomware, and insider threats, reduce false positives, and enhance detection maturity. CEH & CSA certified, experienced in executive reporting, threat intelligence correlation, and mentoring junior analysts.
Skills & Expertise (42)
Work Experience
SOC Analyst (L1)
Value Cyber Tech Pvt. Ltd.
Nov 2020 - Dec 2023
Monitored and analysed alerts from Splunk Enterprise and Azure Sentinel across multiple customers. Investigated phishing emails and malware campaigns, enhancing detection through mailbox and log analysis. Conducted dark web monitoring and OSINT investigations for fraud, impersonation, and data leakage. Analysed CVEs and emerging threats, producing actionable vulnerability reports. Identified malicious and look‑alike domains and coordinated takedown with hosting providers. Supported end‑to‑end incident management, ensuring SLA adherence and proper escalation. Assisted in new device onboarding and SIEM use‑case creation. Conducted knowledge‑sharing sessions and participated in lessons‑learned reviews.
SOC Analyst (L1/L2)
CMITS
Jan 2024 - Feb 2026
Investigated 20–30 security incidents per day including phishing, malware, brute-force attacks, and unauthorized access attempts. Performed advanced L2 threat analysis using Splunk ES dashboards, notables, and reports. Conducted threat hunting on a daily basis to identify adversary tactics and techniques aligned with MITRE ATT&CK. Reduced false positives by ~30% through SIEM alert tuning and rule optimization. Led root cause analysis (RCA) and coordinated containment and eradication actions with client approvals. Proactively operationalized threat intelligence to create new detection use cases. Delivered monthly threat intelligence and SOC performance reports to executive stakeholders. Performed dark web and OSINT reconnaissance to identify phishing campaigns, look‑alike domains, and exposed assets. Educated users and internal teams on cybersecurity best practices and Microsoft Defender capabilities.
Quality Analyst
TechVOX Pvt. Ltd.
Apr 2018 - Sep 2020
Ensured quality assurance for operational processes and customer interactions. Supported incident escalation processes and compliance with defined SLAs.
Education
B.Tech in Electronics and Communication Engineering - BVC College of Engineering, JNTUK
- 2014 · Afghanistan
